On Mar 22, 2007, at 7:43 PM, Daniel N wrote: > > > On 3/23/07, Courtenay <[EMAIL PROTECTED]> wrote: > > > (b) you can't change the contents of the cookie or it will fail > the HMAC. > > If you're overly concerned with "user_id" haxoring, just use a guid > instead of DB id in your User.find > > court3nay > > So does this mean that I can't use the cookie for client side > javascript? If I want to use it to keep track of some client side > script, then I can't? Is that true? >
Nope. Cookies are referenced by name. As long as you don't try to use the same name for your session cookie and your client-side JS, you will be fine. be --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en -~----------~----~----~----~------~----~------~--~---
